1. Manuals
  2. Brands
  3. ADTRAN Manuals
  4. Firewall
  5. NetVanta 2730
  6. Getting started manual

ADTRAN NetVanta 2730 Getting Started Manual

Hide thumbs
Table of Contents

Advertisement

Quick Links

Download this manual

Advertisement

Table of Contents
loading

Related Manuals for ADTRAN NetVanta 2730

Summary of Contents for ADTRAN NetVanta 2730

  • Page 2 ADTRAN NetVanta 2730 Getting Started Guide This Getting Started Guide provides instructions for basic installation and configuration of the ADTRAN NetVanta 2730. After you complete this guide, computers on your Local Area Network (LAN) will have secure Internet access. Document Contents...
  • Page 3 ADTRAN NetVanta 2730 Front Panel LAN/WAN Port Status Provides dedicated LAN/WAN port status as follows: 10/100 Ethernet Port Status link/spd: Off=10M Green=100M Provides Ethernet port status as follows: Amber=1,000M link/spd: Off=10M activity: Solid=link Green=100M Blinking=activity activity: Solid=link Blinking=activity PC Card Slot...
  • Page 4 Interface (CLI) via the supplied power cable DB9 -> RJ45 cable LAN Port (X0) Reset Button Provides dedicated LAN Press and hold to access to local area manually reset the network resources appliance to SafeMode ADTRAN NetVanta 2730 Getting Started Guide Page iii...
  • Page 5 ADTRAN NetVanta 2730 LED Reference Guide Pwr LED Test LED Operational Solid = ROM Booting / Firmware Loading Unavailable Blinking = SafeMode enabled Page iv ADTRAN NetVanta 2730 LED Reference Guide...
  • Page 6 Pre-Configuration Tasks In this Section: This section provides pre-configuration information. Review this section before setting up your ADTRAN NetVanta 2730 appliance. • Checking NetVanta 2730 Package Contents - page 2 • Obtaining Configuration Information - page 3 • Obtaining WWAN Service Provider Information - page 5 •...
  • Page 7 Checking NetVanta 2730 Package Contents Before setting up your NetVanta 2730 appliance, verify that your package contains the following parts: Any Items Missing? If any items are missing from your package, please contact ADTRAN support at 1-888-4-ADTRAN. NetVanta 2730 Appliance...
  • Page 8 Record the serial number found on the bottom panel of your ADTRAN appliance. Authentication Code: Record the authentication code found on the bottom panel of your ADTRAN appliance. Networking Information LAN IP Address: Select a static IP address for your ADTRAN appliance that is within the range of your local subnet.
  • Page 9 Obtaining Internet Service Provider (ISP) Information Record the following information about your secondary ISP: Record the following information about your current ISP: ISP 2 (Optional for Multiple WAN Failover) ISP 1 If you connect You likely Please record If you connect You likely Please record Cable modem,...
  • Page 10 In most cases, if you selected the correct service provider and plan type the WWAN account information does not have to be altered. ADTRAN NetVanta 2730 Getting Started Guide Page 5...
  • Page 11 Page 6 Verifying System Requirements...
  • Page 12 Verifying Your Connection - page 9 Alert: DO NOT insert your PC card into the ADTRAN NetVanta 2730 appliance until you have completed the setup process for your card as described in this section. If your WWAN PC card is already registered and activated with your service provider and you are able to access the Internet through your...
  • Page 13 This section covers prerequisites necessary to set up most Complete the following steps to set up and provision your WWAN PC cards to work with the ADTRAN NetVanta 2730. WWAN PC card. Verify at the www.adtran.com Website that Using an available desktop or laptop PC with Type II PC card...
  • Page 14 Local Area Network Connections display “Media <http://www.adtran.com>, to verify that your connection disconnected” as their status. can transfer data. Congratulations! You have set up and provisioned your WWAN PC card. ADTRAN NetVanta 2730 Getting Started Guide Page 9...
  • Page 15 Page 10 WWAN PC Card Setup...
  • Page 16 • Registration Next Steps - page 16 Note: Registration is an important part of the setup process and is necessary to receive the benefits of ADTRAN security services, firmware updates, and technical support. ADTRAN NetVanta 2730 Getting Started Guide Page 11...
  • Page 17 Before You Register Note that your ADTRAN NetVanta 2730 appliance does not need to be powered on during account creation or during the You need a NetVanta Security Portal account to register the registration and licensing process on www.adtran.com/ ADTRAN NetVanta 2730 appliance. You can create a new NetVantaSecurityPortal.
  • Page 18 • Registering a Second Appliance as a Backup Product Registration You must register your ADTRAN security appliance on NetVanta Security Portal to enable full functionality. Login to your NetVanta Security Portal account. If you do not have an account, you can create one at www.adtran.com/NetVantaSecurityPortal.
  • Page 19 Associated Products page, check the Applicable Services details, click the Info button. Your current licenses are indicated table for services that your ADTRAN appliance is already in the Status column with either a license key or an expiration licensed for. Your initial purchase may have included security services or other software bundled with the date.
  • Page 20 • To try a Free Trial of a service, click Try in the Service To ensure that your network stays protected if your ADTRAN Management page. A 30-day free trial is immediately appliance has an unexpected failure, you can purchase a activated.
  • Page 21 Scenario B: HA section, on page 24 Pair in NAT/Route Mode Registration Next Steps Your ADTRAN NetVanta 2730 HA Pair is now registered and licensed on NetVanta Security Portal. To complete the registration process and for more information, see: - page 21 •...

  • Page 22: Table Of Contents

    In this Section: This section provides detailed overviews of advanced deployment scenarios as well as configuration instructions for connecting your ADTRAN NetVanta 2730. • Initializing the NetVanta 2730 - page 18 • Selecting a Deployment Scenario - page 19 •...

  • Page 23: Adtran Netvanta 2730

    Before inserting the WWAN PC card into your ADTRAN Plug one end of the power supply to the back of the NetVanta 2730 appliance, be sure your WWAN PC card is ADTRAN NetVanta 2730. activated and unlocked. If you are not sure whether your card is unlocked or not, contact the PC card vendor to verify.

  • Page 24: Selecting A Deployment Scenario

    Current Gateway Configuration New Gateway Configuration Use Scenario No gateway appliance Single ADTRAN NetVanta 2730 as a primary A - NAT/Route Mode Gateway gateway. Pair of ADTRAN NetVanta 2730 appliances for B - NAT with HA Pair high availability.

  • Page 25: Scenario A: Nat/Route Mode Gateway

    Scenario A: NAT/Route Mode Gateway In this scenario, the ADTRAN NetVanta 2730 is configured in Internet NAT/Route mode to operate as a single network gateway. Two Internet Internet sources may be routed through the ADTRAN appliance X3 X4 X5 X6 X7 X8...
  • Page 26 This section provides initial configuration instructions for Connecting the LAN Port connecting your ADTRAN NetVanta 2730. Follow these steps if Connect one end of the provided Ethernet cable to the you are setting up Scenario A. computer you are using to manage the ADTRAN NetVanta 2730 appliance.
  • Page 27 Wizard. Depending on the changes made during your setup configuration, the appliance may restart. Troubleshooting Initial Setup If you cannot connect to the ADTRAN NetVanta 2730 appliance or the Setup Wizard does not display, verify the following configurations: LAN Zone DMZ Zone •...
  • Page 28 Ping a host on the Internet. Open another Web browser and navigate to: <http://www.adtran.com> If you can view the ADTRAN home page, you have configured your ADTRAN NetVanta 2730 appliance correctly. If you cannot view the ADTRAN home page, renew your management station DHCP address.

  • Page 29: Scenario B: Ha Pair In Nat/Route Mode

    For network installations with two ADTRAN NetVanta 2730 appliances configured as a stateful synchronized pair for redundant high availability networking. Adtran 1 In this scenario, one ADTRAN NetVanta 2730 operates as the NSA 240 Internet HA Link primary gateway device and the other ADTRAN NetVanta 2730 Adtran 2 is in passive mode.
  • Page 30 This section provides instructions for configuring a pair of Initial HA Setup ADTRAN NetVanta 2730 appliances for High Availability (HA). Before you begin the configuration of HA on the Primary This section is relevant to administrators following deployment ADTRAN security appliance, perform the following setup: Scenario B.
  • Page 31 Backup ADTRAN appliance. preempt mode can be over-aggressive about failing You can find the serial number on the back of the ADTRAN over to the backup appliance. security appliance, or in the System > Status screen of the backup unit.
  • Page 32 Advanced Routing option is selected on the when the appliance is under a heavy load. Network > Routing page. When a failover occurs, 14. Typically, ADTRAN recommends leaving the Heartbeat Dynamic Route Hold-Down Time is the number of Interval, Election Delay Time (seconds), and Dynamic seconds the newly-active appliance keeps the dynamic Route Hold-Down Time fields to their default settings.
  • Page 33 To verify that Primary and Backup ADTRAN security appliances Synchronizing Settings are functioning correctly, wait a few minutes, then trigger a test Once you have configured the HA settings on the Primary failover by logging into the Primary unit and doing a restart. The ADTRAN security appliance, it will automatically synchronize Backup ADTRAN security appliance should quickly take over.
  • Page 34 You can configure HA license synchronization by associating provided before the failover. To enable HA, you can use the two ADTRAN security appliances as HA Primary and HA interface to configure your two appliances as a HA pair in Secondary on NetVanta Security Portal. Note that the Backup Active/Idle mode.
  • Page 35 Associating Pre-Registered Appliances To associate two already-registered ADTRAN security appliances so that they can use HA license synchronization, perform the following steps: Login to NetVanta Security Portal and click My Products. On the My Products page, under Registered Products, scroll down to find the appliance that you want to use as the parent, or primary, unit.

  • Page 36: Scenario C: L2 Bridge Mode

    Scenario C: L2 Bridge Mode For network installations where the ADTRAN NetVanta 2730 is running in tandem with an existing network gateway. Network Gateway In this scenario, the original gateway is maintained. The L2 Bridge Link ADTRAN NetVanta 2730 is integrated seamlessly into the...
  • Page 37 The primary bridge interface must have a static IP assignment. Connection Overview Connect the X1 port on your ADTRAN NetVanta 2730 to the LAN port on your existing Internet gateway device. Then connect the X0 port on your ADTRAN to your LAN.
  • Page 38 Configuring the Secondary Bridge Interface Note: Complete the following steps to configure the ADTRAN Do not enable Never route traffic on the bridge-pair appliance: unless your network topology requires that all packets entering the L2 Bridge remain on the L2 Bridge Navigate to Network >...
  • Page 39 Page 34 Scenario C: L2 Bridge Mode...
  • Page 40 Verifying Your Connection In this Section: This section provides instructions to ensure proper connectivity of your ADTRAN NetVanta 2730 appliance. • Verifying Management Interface Connectivity - page 36 • Verifying WAN (Internet) Connectivity - page 36 • Viewing the WWAN Connection Status - page 37 •...

  • Page 41: Verifying Management Interface Connectivity

    Otherwise, continue with step 2. In the Windows interface of a computer connected to the Wait for the ADTRAN NetVanta 2730 to reboot. When the LAN port, select Start > Run. Test LED is no longer lit, the ADTRAN NetVanta 2730 Enter “cmd”...

  • Page 42: Viewing The Wwan Connection Status

    The Connection Manager window allows you to connect, WWAN connection status. disconnect, and view current WWAN connection status. Log into the ADTRAN NetVanta 2730 appliance In the ADTRAN NetVanta 2730 appliance management management interface. interface, navigate to Network > Interfaces.

  • Page 43: Verifying Wwan Failover Functionality

    Unplug your appliance’s WAN port (if you plugged it in during the initial setup). Wait a few moments for the NetVanta 2730 to failover to the WWAN for Internet connectivity. Refer to the front panel of the appliance to see when the WWAN PC card shows activity.
  • Page 44 Enabling Essential Security Services In this Section: Security services are an essential component of a secure network deployment. This section provides instructions for registering and enabling security services on your ADTRAN NetVanta 2730 appliance. • Activating Licenses - page 40 •...
  • Page 45 The Setup Wizard automatically synchronizes all licenses with NetVanta Security Portal if the appliance has Internet access ADTRAN security services are key components of threat during initial setup. If initial setup is already complete, you can management. The core security services are Gateway Anti- synchronize licenses from the System >...
  • Page 46 Select the Enable Inbound Inspection checkboxes for the protocols to inspect. By default, ADTRAN GAV inspects all executes that file. ADTRAN Gateway Anti-Virus inbound HTTP, FTP, IMAP, SMTP and POP3 traffic. CIFS/...
  • Page 47 Select the Enable Intrusion Prevention checkbox. Select the Disable SMTP Responses box to suppress the sending of email messages to clients from ADTRAN GAV when a virus is detected in an email or attachment. Select Enable HTTP Clientless Notification Alerts and...
  • Page 48 Navigate to the Security Services > Anti-Spyware page. Click Configure IPS Settings to enable IP packet Select the Enable Anti-Spyware checkbox. reassembly before inspection and create an ADTRAN IPS exclusion list. In the IPS Config View window, select Enable IPS...
  • Page 49 Spyware exclusion list. configuration settings. Select the Disable SMTP Responses box to suppress the sending of email messages to clients from ADTRAN Anti- Spyware when spyware is detected in an email or attachment. Select Enable HTTP Clientless Notification Alerts and...
  • Page 50 To edit a trusted domain entry, click the pencil icon in the Configure column. To delete an individual trusted domain from the CFS Exclusion List, click the Delete icon for the entry in the Configure column. ADTRAN NetVanta 2730 Getting Started Guide Page 45...
  • Page 51 To delete all trusted domains from the CFS Exclusion List, click Delete All. On the Security Services > Content Filter page, click Accept. Applying Security Services to Network Zones A network zone is a logical group of one or more interfaces to which you can apply security rules to regulate traffic passing from one zone to another zone.
  • Page 52 • Creating Network Access Rules - page 51 • Creating a NAT Policy - page 54 • Upgrading Firmware on Your ADTRAN - page 56 • Troubleshooting Diagnostic Tools - page 59 • - page 62 ADTRAN NetVanta 2730 Getting Started Guide...

  • Page 53: Manually Configuring Wwan Failover

    Manually Configuring WWAN Failover Configuring Additional Interfaces To manually configure WWAN Failover: The Web-based management interface allows you to configure two ports as WAN interfaces. Port X1 is preconfigured as the Navigate to the WWAN > Connection Profiles page. WAN. You have the option of choosing another port (X2-X8) to Under Connection Profiles, click Add.
  • Page 54 Basic Active/Passive Failover as a method, but there are four load balancing methods available: On the Network > WAN Failover & LB page, select Enable Load Balancing. ADTRAN NetVanta 2730 Getting Started Guide Page 49...
  • Page 55 WAN ISP’s router fails but the farther upstream continues to respond, interface, regardless of the percentage of traffic the ADTRAN security appliance assumes the link is usable and through that interface. continues to send traffic across it.

  • Page 56: Configuring Portshield Interfaces

    The PortShield feature enables you to configure some or all of A Zone is a logical grouping of one or more interfaces designed the switch ports on the ADTRAN NetVanta 2730 appliance into to make management, such as the definition and application of...
  • Page 57 To create an access rule: In the Add Rule page in the General tab, select Allow or Deny or Discard from the Action list to permit or block IP On the Firewall > Access Rules page in the matrix view, traffic.
  • Page 58 Click on the QoS tab to apply DSCP or 802.1p Quality of Service coloring/marking to traffic governed by this rule. Click OK to add the rule. ADTRAN NetVanta 2730 Getting Started Guide Page 53...

  • Page 59: Creating A Nat Policy

    NAT policies for their incoming and outgoing employs Address Objects as a defining criterion. traffic. By default, the ADTRAN security appliance has a Since there are multiple types of network address expressions, preconfigured NAT policy to perform Many-to-One NAT...
  • Page 60 The following NAT configurations are available: • Many-to-One NAT Policy • Many-to-Many NAT Policy • One-to-One NAT Policy for Outbound Traffic • One-to-One NAT Policy for Inbound Traffic (Reflexive) • One-to-Many NAT Load Balancing ADTRAN NetVanta 2730 Getting Started Guide Page 55...

  • Page 61: Upgrading Firmware On Your Adtran

    IPs 13. Click Add. are translated from the IP address of the ADTRAN security appliance WAN port to the IP address of the internal Web Policies for subnets behind the other interfaces of the ADTRAN server.
  • Page 62 ADTRAN security appliance, protecting all your The appliance must be properly registered before it can be existing settings in the event that it becomes necessary to upgraded.
  • Page 63 Using SafeMode to Upgrade Firmware appliance, select the Create Backup On Next Boot If you are unable to connect to the ADTRAN security checkbox to make a backup copy of your current settings. appliance’s management interface, you can restart the Your settings will be saved when the appliance restarts.

  • Page 64: Troubleshooting Diagnostic Tools

    Packet Capture allows you to capture and examine the Several diagnostic tools are provided to help you maintain your contents of individual data packets that traverse your ADTRAN network and troubleshoot problems. Several tools can be firewall appliance. The captured packets contain both data and accessed on the System >...
  • Page 65 The user interface provides three windows to display different • Display Filter – interfaces, packet types, source/ views of the captured packets: destination • Logging – automatic transfer of buffer to FTP server • Captured Packets • Advanced – generated packets, syslog, management •...
  • Page 66 OR. The Ping test bounces a packet off a machine on the Internet and returns it to the sender. This test shows if the ADTRAN security appliance is able to contact the remote host. If users on...
  • Page 67 Using the Log > View Page The ADTRAN security appliance maintains an Event log for tracking potential security threats. You can view the log in the Log > View page, or it can be automatically sent to an email address for convenience and archiving. The log is displayed in a table and can be sorted by column.
  • Page 68 FCC Part 15 Class B Notice - page 66 • Copyright Notice - page 67 • Trademarks - page 67 Note: Safety and Regulatory compliance in this section is based on SonicWALL, Inc. regulatory model / type as shown. ADTRAN NetVanta 2730 Getting Started Guide Page 63...

  • Page 69: Safety And Regulatory Information

    Power Supply Information loading the circuits has minimal impact on overcurrent If the power supply is missing from your ADTRAN product protection and supply wiring. Appropriate consideration package, please contact ADTRAN Customer Support Services (1-888-4-ADTRAN) for a replacement.

  • Page 70: Safety And Regulatory Information In German

    Vergewissern Sie sich, dass das Gerät sicher im Rack Informationen zur Stromversorgung befestigt ist. Sollte das Netzteil nicht im Lieferumfang der ADTRAN enthalten sein, wenden Sie sich diesbezüglich an den technischen Support von ADTRAN. Dieses Produkt darf nur in Verbindung mit einem nach den Normen der Underwriter Laboratories, USA als „UL-gelistet“...

  • Page 71: Fcc Part 15 Class B Notice

    Caution: Modifying this equipment or using this equipment for • Consult ADTRAN (1-888-4-ADTRAN) for assistance. purposes not shown in this manual without the written consent Complies with EN55022 Class B and CISPR22 Class B. of SonicWALL could void the user’s authority to operate this *Refer to the label on the bottom of the unit for device equipment.

  • Page 72: Copyright Notice

    R.O.C. All certificates held by Secuwide, Corp. Trademarks ADTRAN is a registered trademark of ADTRAN. Microsoft Windows 98, Windows Vista, Windows 2000, Windows XP, Windows Server 2003, Internet Explorer, and Active Directory are trademarks or registered trademarks of Microsoft Corporation.
  • Page 73 Notes ADTRAN NetVanta 2730 Getting Started Guide Page 68...

Table of Contents